Job Description PRIMARY DUTIES & RESPONSIBILITIES: Provides comprehensive Cyber Security services during the development, testing, deployment, and sustainment of a prototype Electronic Security System (ESS) being developed by the project team Conducts risk assessments during the design, development, integration, test, install, operation, and sustainment phases to provide the engineering team with recommendations that mitigate or eliminate potential attack vectors Develops documentation in support of obtaining an IATT and/or ATO using the RMF process; as this is a prototype system, there are no existing artifacts Works with the network and engineering teams, some or all of the following documentation may be required:
System diagrams to define the accreditation boundary. Concept of Operations (CONOPS) Ports, Protocols, & Services Management (PPSM) Hardware / Software list Network architecture diagram System Security Plan (SSP) / Application Security Plan Security Assessment Report (SAR) / Risk Assessment Report (RAR) Information Security Continuous Monitoring (ISCM) Plan Plan of Action and Milestones (POA&M) Configuration Management Plan (CMP) Configuration Control Board Charter (CCB) Incident Response Plan (IRP) Rules of Behavior (ROB) / Acceptable Use Policy (AUP) Systems Administration Manual (SAM) Continuity of Operations Plan (COOP) or Business Continuity Plan (BCP) Disaster Recovery Plan (DRP) Contingency Plan (CP) System Level Agreements (SLA) Memorandum of Agreements (MOA) Memorandum of Understanding (MOU) Requirements MINIMUM SKILLS & REQUIREMENTS: 5+ years of hands-on cybersecurity experience that includes:
Conducting vulnerability risk assessments to provide hardware and software design recommendations to the engineering team Development and delivery of Risk Management Framework artifacts required to obtain an Interim Authority to Test (IATT) and/or an Authority to Operate (ATO) Implementation and testing of applied controls Use of DoD-approved automated vulnerability scanning software; documenting and mitigating findings Assured Compliance Assessment Solution Producing quality and information assurance related reports and documentation
Applicants must possess at least one of the following certifications: Certified Ethical Hacker (CEH) CompTIA Security+ CE CompTIA Cybersecurity Analyst+ (CySA+) CompTIA Penetration Testing+ (PenTest+) GIAC Foundational Cybersecurity Technologies (GFACT) GIAC Security Essentials (GSEC) Systems Security Certified Practitioner (SSCP) Certified Information Systems Security Professional or Associate (CISSP / CISSA) DESIRED SKILLS & REQUIREMENTS: Experience within the DoD with the processes required to obtain an IATT and ATO for a prototype system
SRC IS A CONTRACTOR FOR THE U.S. GOVERNMENT, THIS POSITION WILL REQUIRE U.S. CITIZENSHIP AND ELIGIBILITY FOR A U.S. GOVERNMENT SECURITY CLEARANCE AT THE POSITION OF TRUST LEVEL
ABOUT US
Scientific Research Corporation is an advanced information technology and engineering company that provides innovative products and services to government and private industry, as well as independent institutions. At the core of our capabilities is a seasoned team of highly skilled engineers and scientists with multidisciplinary backgrounds. This team is challenged daily to provide cutting edge technology solutions to our clients.
Scientific Research Corporation offers a competitive salary, an extensive benefits package and a work environment that encourages excellence. For positions requiring a security clearance, selected applicants will be subject to a government security investigation and must meet eligibility requirements for access to classified information.
DIVERSITY & INCLUSION
We strongly believe in the abundance of differences among individuals. We value different points of view and appreciate diverse perspectives. We truly believe this is what makes our organization inclusive and more responsive to the needs of our diverse customers.
EQUAL OPPORTUNITY EMPLOYER
Scientific Research Corporation is an equal opportunity and affirmative action employer that does not discriminate in employment.
All qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, age, sexual orientation, gender identity, or national origin, disability or protected veteran status.
Scientific Research Corporation endeavors to make accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact for assistance. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. [#CJ #LI-TF1] FILLING THIS POSITION IS CONTINGENT UPON FUNDING
